CVE-2014-6195

Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

Published: 14/02/2015 Updated: 14/02/2023

CVSS v2 Base Score: 1.9 | Impact Score: 2.9 | Exploitability Score: 3.4

VMScore: 169

Vector: AV:L/AC:M/Au:N/C:N/I:P/A:N

The (1) Java GUI and (2) Web GUI components in the IBM Tivoli Storage Manager (TSM) Backup-Archive client 5.4 and 5.5 prior to 5.5.4.4 on AIX, Linux, and Solaris; 5.4.x and 5.5.x on Windows and z/OS; 6.1 prior to 6.1.5.7 on z/OS; 6.1 and 6.2 prior to 6.2.5.2 on Windows, prior to 6.2.5.3 on AIX and Linux x86, and prior to 6.2.5.4 on Linux Z and Solaris; 6.3 prior to 6.3.2.1 on AIX, prior to 6.3.2.2 on Windows, and prior to 6.3.2.3 on Linux; 6.4 prior to 6.4.2.1; and 7.1 prior to 7.1.1 in IBM TSM for Mail, when the Data Protection for Lotus Domino component is used, allow local users to bypass authentication and restore a Domino database or transaction-log backup via unspecified vectors.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ibm tivoli storage manager 7.1
ibm tivoli storage manager 5.5
ibm tivoli storage manager 6.4
ibm tivoli storage manager 6.1
ibm tivoli storage manager 5.4
ibm tivoli storage manager 6.3
ibm tivoli storage manager 6.2

CWE-284 http://www-01.ibm.com/support/docview.wss?uid=swg1IT04249 http://www-01.ibm.com/support/docview.wss?uid=swg21695183 https://exchange.xforce.ibmcloud.com/vulnerabilities/98607 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-6195

Vulnerability Summary

References

Vulmon Search

About

Products

Connect